Outlook Stopped Working After Disabling TLS 1.0

Hello All, Once again I am back with one more scenario / problem and obviously solution also. As time is passing, the new incarnations of technologies appearing day by day due to which old policies/settings/protocols going obsolete. When we talk about TLS 1.0, this has been vulnerable now and replaced by TLS 1.1 and TLS 1.2. This article is also related to this one only. As TLS 1.0 is vulnerable now so it is advised not to employ this protocol therefore you need to disable it. Once you disable it then after a couple of minutes/days you will notice or receive requests that Outlook stopped working after disabling TLS 1.0. Then you need to re-enable TLS 1.0 and Outlook will come back in it’s previous state and start functioning again.

 

So here I am going to mention steps to resolve the issue.

How To Resolve Outlook Issue After Disabling TLS 1.0

As TLS 1.0 is vulnerable therefore online transactions also being denied while this protocol is enabled and suggested to disable TLS 1.0 from Internet Explorer settings. Please go through this link to find out how to disable TLS 1.0 in IE Enable TLS In Internet Explorer Via GPO. But after doing this Outlook stopped working. Restart Outlook and Machine multiple times didn’t help and issue remains as it is. Then made some changes in registry to enable TLS 1.1 and TLS 1.2 for machines and restarted the Outlook which resolved the issue. Sometimes machine reboot works after enabling TLS 1.1 / 1.2 to resolve this issue so don’t hesitate to do this as a next step.

Please find the below steps to enable TLS 1.1 / TLS 1.2.

For Single Machine:

Go to below path:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\

Make key with the name “TLS 1.1” and then inside it “Client” ( in case TLS 1.1 / Client not present). Then click on the key “Client” and on right side create DWORD having name DisabledByDefault and give value 0 (Zero). Thereafter, create one more DWORD with name Enabled and give value 1 (One).

Thereafter create another Key “Server” inside Key “TLS 1.1” and perform the same steps as we did above for Key “Client”.

Once done then go to below path again:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\

And create another Key “TLS 1.2” and perform same as we did for Key “TLS 1.1”.

This was all about if you have to enable TLS 1.1 / 1.2 for a single machine.

For Multiple Machines: 

Do it using GPO. Go to Computer Configuration –> Preferences –> Windows Settings –> Registry. Then right click on Registry–> New–> Registry Item. Go to path as mentioned above and create entry one-by-one.

Thanking you for giving your precious time with this article.

Other Post:

Leave a Reply